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Amendments to the Claims: 

Claims 1, 3-7, 9-16, and 18-31 were finally rejected by the Examiner in the cited 
Office Action. The claims as rejected are reproduced here with the exception of a 
correction to claim 3 1 detailed below, and constitutes the listing of claims that are the 
subject of this appeal. Claim 31 as reproduced herein includes a change to correct a 
typographical error previously submitted when claim 31 was amended. Specifically, 
claim 31 was amended to incorporate language of now-cancelled claim 32, which 
recited "...a list of certificates that are applicable to the request, During 
prosecution, amended claim 31 inadvertently recited "... a list of certificates that are 
application to the request,...", which is corrected below to reflect the original 
language of claim 32. 

Listing of Claims: 



1 . (Previously Amended) A method for conducting electronic commerce, comprising 
steps of: 

operating a computer to contact a commerce-related site using a browser; 

automatically detecting a presence of a message received from the commerce- 
related site that requires, as a response, non-stored authentication information inputted 
by a user in response to the detected presence of the message; 

in response to automatically detecting the presence of the message, sending a 
message from the computer to a mobile station over a bi-directional transmission link; 

in response to receiving the message over the link, generating a user 
authentication message that is generated by prompting the user to enter a personal 
identification number (PIN) and comparing the entered PIN to a PIN stored in the 
mobile station; 

passing the user authentication message from the mobile station to the 
computer over the bi-directional transmission link; and 

sending user authentication information from the computer to the commerce- 
related site using the browser. 

3. (Original) A method as in claim 1, wherein the user authentication message is 
comprised of at least one of a cryptogram and a digital signature. 
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4. (Original) A method as in claim 1, wherein the steps of detecting a presence of the 
received message and sending the message from the computer to the mobile station 
include a step of operating a browser plug-in software module. 

5. (Previously Amended) A method as in claim 1, wherein the steps of automatically 
detecting a presence of the received message and sending the message from the 
computer to the mobile station include a step of operating a browser module. 

6. (Original) A method as in claim 1, wherein the link is implemented using Bluetooth 
technology. 

7. (Previously Amended) A system for conducting communication with a site 
reachable through a data communications network, comprising: 

a mobile station comprising a user interface and a mobile station utilization 
application; and 

a computer coupled to a data communications network and comprising a 
browser for contacting the site through the data communications network, the 
computer and browser operating to automatically detect a presence of a received 
message from the site that requires a response from the user, and further comprising 
an interface for sending a message from the computer to the mobile station over a bi- 
directional link in response to automatically detecting the presence of the message; 

said mobile station utilization application being responsive to the receipt of the 
message from the link for generating a user response message and for passing the user 
response message to the computer over the link, said mobile station operating to 
prompt the user to enter a personal identification number (PIN) into the mobile station 
and to compare the entered PIN to a PIN stored in the mobile station; and 



said computer being responsive to a receipt of said user response message for 
sending user response information to the site using said browser. 
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9. (Previously Amended) A system for conducting communication with a site 
reachable through a data communications network, comprising: 

a mobile station comprising a user interface and a mobile station utilization 
application; and 

a computer coupled to a data communications network and comprising a 
browser for contacting the site through the data communications network, the 
computer and browser operating to automatically detect a presence of a received 
message from the site that requires a response from the user, and further comprising 
an interface for sending a message from the computer to the mobile station over a 
bidirectional link in response to automatically detecting the presence of the message; 

said mobile station utilization application being responsive to the receipt of the 
message from the link for generating a user response message and for passing the user 
response message to the computer over the link; and 

said computer being responsive to a receipt of said user response message for 
sending user response information to the site using said browser, 

wherein said computer operates to prompt the user to enter a personal 
identification number (PIN) into said computer, said computer transmits the entered 
PIN to said mobile station over the link, and where a user authentication module in 
said mobile station compares the entered PIN to a PIN stored in the mobile station. 

10. (Original) A system as in claim 7, wherein said user response is comprised of a 
user authentication. 

1 1 . (Original) A system as in claim 7, wherein said user response is comprised of a 
payment request. 

12. (Original) A system as in claim 7, wherein said user response is comprised of a 
digital signature. 



13. (Original) A system as in claim 7, wherein said site is comprised of a site operated 
by a merchant that is reached through the Internet. 
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14. (Original) A system as in claim 7, wherein at least one electronic ticket is 
downloaded from said site, via said browser, to a memory of said mobile station. 

15. (Original) A system as in claim 7, wherein said link is implemented using 
Bluetooth technology. 

16. (Previously Amended) A method for conducting communication with a site 
reachable through a data communications network, comprising steps of: 

providing a mobile station having a user interface and an application; 

coupling a computer to a data communications network, the computer having 
a browser for contacting the site through the data communications network; 

automatically detecting with the computer a presence of a received message 
from the site that requires a response from the user; 

in response to automatically detecting the presence of the received message, 
sending a message from the computer to the mobile station over a bi-directional link; 

responsive to the receipt of the message in the mobile station and an input of a 
personal identification number (PIN) and a comparison of the inputted PIN to a PIN 
stored in the mobile station, generating a user response message and passing the user 
response message to the computer over the link; and 

responsive to a receipt of the user response message in the computer, sending 
user response information to the site using the browser. 

18. (Original) A method as in claim 16, wherein said user response is comprised of at 
least one of a user authentication, a payment request, or a digital signature. 

19. (Original) A method as in claim 16, wherein the site is operated by a merchant and 
is reached through the Internet. 



20. (Original) A method as in claim 16, wherein data is downloaded from the site, via 
the browser, to a memory of the mobile station. 
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21. (Previously Added) A method as in claim 1, where the received message is 
automatically detected using message parsing. 

22. (Previously Added) A method for conducting communication with a site reachable 
through the Internet, comprising: 

providing a mobile station; 

coupling a browser running on a computer to the site through the Internet; 

automatically detecting a presence of a received challenge from the site, the 
received challenge being detected based on message parsing that comprises Multi- 
purpose Internet Mail Extensions (MIME) field recognition; 

in response to automatically detecting the presence of the received challenge, 
sending at least one message from the computer to the mobile station over a 
bidirectional wireless link; 

responsive to the receipt of the at least one message in the mobile station, 
generating a response to the challenge and transmitting the response to the computer 
over the link, where generating the response comprises prompting the user to enter 
personal identification information using one of a computer user interface or a mobile 
station user interface, and operating a user authentication module in the mobile station 
to validate the entered personal identification information; and 



responsive to a receipt of the response at the computer, sending a response to 
the challenge to the site using the browser. 
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23. (Previously Added) A method for conducting communication with a site reachable 
through the Internet, comprising: 

providing a mobile station; 

coupling a browser running on a computer to the site through the Internet; 

automatically detecting a presence of a received request from the site; 

in response to automatically detecting the presence of the received request, 
sending an inquiry to the mobile station from the computer for a list of certificates 
that are applicable to the request, the certificates being accessible by the mobile 
station; 

presenting the list of applicable certificates to the user for selecting one of the 
presented certificates; 

using the mobile station to communicate with a source of the selected certificate 
for completing the certificate; 

passing the completed certificate to the browser; and 

responsive to a receipt of the completed certificate, responding to the request 
received from the site. 

24. (Previously Added) A method as in claim 23, where the request comprises a 
request for an authenticated certificate, where the applicable certificates comprise 
authentication certificates, and where the completed certificate comprises an 
authenticated certificate. 

25. (Previously Added) A method as in claim 23, where the request comprises a 
request for a digital signature, where the applicable certificates comprise signature 
certificates, and where the completed certificate comprises a signed signature 
certificate. 

26. (Previously Added) A method as in claim 23, where the received request is 
detected based on message parsing. 
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27. (Previously Added) A method as in claim 26, where message parsing comprises 
Multi-Purpose Internet Mail Extensions (MIME) field recognition. 

28. (Previously Added) A method as in claim 23, where completing the certificate 
comprises prompting the user to enter personal identification information using one of 
a computer user interface or a mobile station user interface, and verifying the entered 
personal identification information in cooperation with the source of the selected 
certificate. 

29. (Previously Added) A method as in claim 23, where the list of applicable 
certificates are displayed to the user using one of a computer user interface or a 
mobile station user interface. 

30. (Previously Added) A mobile station for conducting communication with a server 
reachable through a data communications network, comprising: 

a bidirectional data path for coupling to a network access application; and 

a controller, responsive to an automatic detection of a presence of a received 
request from the server by the access application or an extension of the access 
application, and to a reception of an inquiry from the access application, or the 
extension of the access application, for a list of mobile station accessible certificates 
that are applicable to the request, for returning the list of applicable certificates, and in 
response to the user selecting one of the certificates, for communicating with a source 
of the selected certificate for completing the certificate and passing the completed 
certificate to the network access application for responding to the request received 
from the server. 
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31. (P*eviOTSty Amended) A method for conducting communication with a server, 
comprising: 

coupling an access application running on a computer to the server through a 
data communications network; 

automatically detecting a presence of a request that is received from the 
server, the request being one that requires an authentication of a user; 

in response to automatically detecting the presence of the request, sending a 
message from the computer to a mobile station over a link; the message comprising an 
inquiry for a list of certificates that are applicable to the request, the certificates being 
accessible by the mobile station; 

presenting the list of applicable certificates to the user for selecting one of the 
presented certificates; 

using the mobile station to communicate with a source of the selected 
certificate for completing the certificate which comprises a user authentication 
message; 

passing the completed certificate over a link to the access application running 
on the computer; 

responsive to a receipt of the completed certificate, sending user 
authentication information to the server using the access application. 
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